CVE-2025-29935: OOB Write in AMD PMF Enables Elevated Code Exec
CVE-2025-29935 Published on May 15, 2026

An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiality integrity, or availability.

NVD

Weakness Type

What is a Memory Corruption Vulnerability?

The software writes data past the end, or before the beginning, of the intended buffer. Typically, this can result in corruption of data, a crash, or code execution. The software may modify an index or perform pointer arithmetic that references a memory location that is outside of the boundaries of the buffer. A subsequent write operation then produces undefined or unexpected results.

CVE-2025-29935 has been classified to as a Memory Corruption vulnerability or weakness.

Affected Versions

AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt"):

Version 7.06.02.123 is unaffected.

AMD Ryzen™ Embedded R8000 Series Processors:

Version AMD Ryzen™ Chipset Driver 7.06.02.123 is unaffected.

CVE-2025-29935: OOB Write in AMD PMF Enables Elevated Code ExecCVE-2025-29935 Published on May 15, 2026

Weakness Type

What is a Memory Corruption Vulnerability?

Affected Versions

CVE-2025-29935: OOB Write in AMD PMF Enables Elevated Code Exec
CVE-2025-29935 Published on May 15, 2026